cef telecom 2017-1 virtual info day cef-tc-2017-1 cef eid ... · cef telecom 2017-1 virtual info...
TRANSCRIPT
CEF Telecom 2017-1 virtual info day CEF-TC-2017-1 CEF eID - eSignature Gabor Bartha
28 February 2017
Agenda
1
2
3
eIDAS eID and eSignatureSpeaker
What is the funding forSpeaker
Service offering
4 eIDAS Infrastructure status
Electronic identification for node operators, service providers and identity
providers
NODE OPERATORS
IDENTITY/ATTRIBUTE PROVIDERS
CITIZENS
Member States
Cross border authentication mutual recognition
SERVICE PROVIDERS
The eID ecosystem
The eID ecosystem
5
Service Provider
Entity offering online services
that rely on eID for cross-border
authentication.
Identity Provider
Entity responsible for verifying that
a user is who they claim to be and
assert verified data that identifies
them to the relying party
Node Operator
Entity responsible for ensuring
that the eID node performs
correctly and reliably its
functions as a connection point.
Attribute Provider
Entity responsible for providing
information about electronic identities
(e.g. sector-specific information
beyond the minimum dataset for
natural and legal persons)
eIDAS Interoperability Architecture
Service Provider
Connector
Proxy-Service
eIDAS-Node
Connector
Proxy-Service
eIDAS-Node
Identity Provider
Member State A Relying Party
Member State B
SAML
MDS
1 2
3
4
5 6
Citizen
Electronic signatures
Connecting Europe Facility – eSignature Building Block • Open-source software library:
• Digital Signature Services (DSS, formerly known as SD - DSS)
• Trusted List management software:
• Trusted List Manager (TL Manager)
• Creation • Extension • Validation of cross-border interoperable eSignatures
Management of • Member
States' Trusted Lists
• EU List of Trusted Lists
Digital Signature Services (DSS) – open-source software library
• Creation, extension and validation of eSignatures/eSeals, checking them against trusted lists for qualified status
• Features
• eIDAS-aligned.
• Supported formats: XAdES, PAdES, CAdES, ASiC.
• Open-source software under LGPL 2.1.
• Written in Java (version 1.7 and above).
• Flexible:
• Different topologies: applet, stand-alone application, server-based.
• Use entirely or per module.
• Fully configurable through extension points or configuration files.
• Support both e-signatures and e-seals
• Transparent use of signature creation devices (e.g. Smartcards, Hardware Security Modules, software).
What is the funding for Scope of the CEF-TC-2017-1 eIdentification & eSignature
Scope of the call for eID
11
(c) eIDAS enabled Erasmus Student eCard
Support the use of nationally issued eID for students' authentication across borders by promoting the uptake and use of eID
amongst public and private sector entities. In addition, the objective is to support the
integration of eID in existing e-service/system/online platforms in higher
education sectors (e.g. such as universities) to facilitate the mobility of
students in the European Union;
(a) eID Integration
Integration of eID in an existing e-service/system/online
platform to enable private and public sector entities (including local administrations) to support
nationally issued eIDs issued from any Member State.
(b) eIDAS node
Set up eIDAS node compliant with the latest version of eIDAS technical
specifications and its operation for one year by Member States which do not yet have their eIDAS nodes ready
and did not benefit from funding under 2014 eID call for the connection
of the national eID infrastructure to the core platform.
Scope of the call for eSignature
(d) Uptake and use of eSignature by developing systems for both Member States and the private sector (which provide solutions to the public sector bodies) relying on the eSignature DSI Building Block (SD-DSS). Applicants who already received CEF funding under previous eID &
eSignature calls (2014-3/2015-2/2016-2) and who plan to apply again under
this call must clearly explain in the relevant section of application form part D
of their proposal (notably section 1 and Q2.1) how their proposed actions will
differ from those action(s) funded under the previous call(s).
12
eID & eSignature
• Budget: €7 million:
• eID: indicative € 6 million
• €4 million (indicative) for eID proposals covering eID DSI integration (type a) and eIDAS node (type b, maximum 100.000 € per MS)
• €2 million (indicative) for eID proposals covering eIDAS enabled Erasmus Student eCard (type c)
• eSignature: an indicative €1 million (type d)
• Co-funding rate: 75%
• Pre-financing: N/A
• Duration of the actions: indicative 1 year
13
eID & eSignature: Eligibility
• Consortium composition: at least 3 entities from one or more Member State(s).
• eID proposals: at least 1 entity should be a public service or an entity acting on behalf of a public service. If an entity in charge of eIDAS node is not part of the consortium, an explicit endorsement from the relevant MS representation of the eIDAS Cooperation Network must be provided.
• eSignature proposals: at least 1 entity should be a public service or an entity acting on behalf of a public service. If no public entities are part of the consortium, an explicit endorsement from the relevant public service(s) on behalf of which the applicants are acting must be provided.
14
eID & eSignature: award criteria (1)
Relevance: Alignment to DSI implementation objectives & activities (WP)
• Explain how your action complies with the eIDAS Regulation and other applicable EU legislation;
• Name the e-services you intend to connect to eIDAS node; briefly explain what this service is all about (to whom is it provided?)
• Is IDP used for services' authentication nationally recognised and will be notified under eIDAS?
• Include information on any other relevant projects in which you have participated or are ongoing (for applicants that already benefit from CEF funding , please explain what you already do under CEF funded projects for eID & eSignature DSIs and how your new proposal will differ/ its added value).
Alignment to EU/national policies, strategies and activities
• Provide details on the national context for eIDAS implementation and how your action intends to contribute to it;
• Reference any specific strategies pursued at the national level. Provide background information on the eIDAS readiness in your Member State.
15
eID & eSignature: award criteria (2)
Quality and efficienty of the implmentation • Maturity – provide technical details about your existing and proposed solutions, include information
on the architecture of the solution (provide description as well as graphs); explain if you intend to achieve production ready solution, For eID – mention whether the eIDAS node is already set up and to which version it is compliant; if you already use CEF funds for building your node/connecing servcies, explain how the new action will differ.
• Coherence/effectivess with work plan –part D should match the activities and tasks described in part A; provide information on the costs of the activities and justify them, including subcontracting; include clear information on the management structure, explain the governance of the project and what roles each applicant has in the management structure (explain it also in relation to the eIDAS governance in your MS);
• Quality of consortium/consortium members – explain the role of each applicant (service provider, eIDAS node operator, identity provider, attribute provider, other?);
• Support from national authorities/industry/NGOs – back up your application with relevant support from private or public bodies, to demonstrate broader interest in the project
• Attention to security/privacy/inclusiveness/accessibility (if relevant)
16
eID & eSignature: award criteria (3)
Impact & sustainability:
Quality of the approach to facilitate wider deployment/take-up of the proposed actions
• Include estimates on the number of current/expected users of services;
• Explain the European added value of connecting particular services;
• How do you intend to advertise its usage; how do you intend to approach external partners?
• Will the deployment of services covered by your action, facilitate the deployment of additional services?
Capability of long-term sustainability without EU funding
• How will you maintain the services?
• If public funds will be used, specify how you intend to secure the budget?
• For private sector services lay down your ideas for financial sustainability;
• If a commercial solution is sought, explain your initial ideas (e.g. pricing).
17
Service Offering How the European Commission can help you become
part of the eIDAS eID network
Node operators
Attribute providers
Identity providers Citizens
Service Providers
SOFTWARE
SAMPLE IMPLEMENTATION
TESTING TOOLS
OPERATIONS
CONFORMANCE TESTING
SERVICE DESK
TRAINING
TECHNICAL SPECIFICATIONS
eIDAS SAML Standard
eIDAS Message Format
eIDAS Interoperability
STAKEHOLDER MANAGEMENT
KNOWLEDGE BASE
COMMUNITY MANAGEMENT
Services offered by the European Commission as part of CEF eID:
Node operators Citizens
Service Providers
Identity providers
Attribute providers
SOFTWARE
SAMPLE IMPLEMENTATION
TESTING TOOLS
OPERATIONS
CONFORMANCE TESTING
SERVICE DESK
TRAINING
TECHNICAL SPECIFICATIONS
eIDAS SAML Standard
eIDAS Message Format
eIDAS Interoperability
STAKEHOLDER MANAGEMENT
KNOWLEDGE BASE
COMMUNITY MANAGEMENT
Services offered by the European Commission as part of CEF eID:
Node operators Citizens
Service Providers
Attribute providers
Identity providers
SOFTWARE
SAMPLE IMPLEMENTATION
TESTING TOOLS
OPERATIONS
CONFORMANCE TESTING
SERVICE DESK
TRAINING
TECHNICAL SPECIFICATIONS
eIDAS SAML Standard
eIDAS Message Format
eIDAS Interoperability
STAKEHOLDER MANAGEMENT
KNOWLEDGE BASE
COMMUNITY MANAGEMENT
Services offered by the European Commission as part of CEF eID:
eIDAS Infrastructure status The status of the eIDAS eID service in the Member States
Countries in process of implementing an eIDAS-compliant Node
• Countries setting-up an eIDAS-compliant Node: AT*, BE, CZ*, DE, DK*, EE*, EL*, ES*, FR, HU, IS, IT*, LU*, MT*, NL*, NO*, PL*, SK, SE, UK*
• Countries planning national eIDAS Node implementation: BG, CY, FI, LT, LV*, MT*, RO, SI, TR
• Countries to be confirmed: HR, IE, PT
* countries that expressed intent to use CEF eID sample implementation
• Some countries have already communicated their timeline for their node implementation:
23
2017 2018
Belgium Italy Estonia
Bulgaria Luxembourg
eID schemes notified
24
Germany
National ID Card
40.000.000 registered users
20.02. 2017
A milestone towards establishing eID and trust services in Europe achieved !
20 February 2017 first pre-notification
Contact us
© European Union, 2017. All rights reserved. Certain parts are licensed under conditions to the EU. Reproduction is authorized provided the source is acknowledged.
DIGIT Directorate-General for Informatics
DG CONNECT Directorate-General for Communications Networks, Content and Technology
Find out more about eID and eSignature on CEF Digital
ec.europa.eu/cefdigital